|
HIPAA & Data Security
 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - HIPAA - Health Insurance Portability and Accountability Act - was enacted on August 21, 1996 by the Clinton Administration. It is a set of comprehensive regulations and guidelines to protect the patient’s privacy and rights and to streamline the electronic transaction process between providers and players.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
We have a firm belief in the principle of patient and client confidentiality thus we at TEXT SWITCH strictly adhere to HIPAA security and privacy rules by employing the following measures:
• We implement our own drafted Data Security Policy in our day
---to day operation
• Our company employs a HIPAA compliance and data security
---officer who implements our data protection policy.
Data Security & Protection Policy
• Administrative -
All employees who have access to a client’s sensitive
-----------------------------information have signed a strict computer and internet
-----------------------------usage policy and a confidentiality and non-disclosure
-----------------------------agreements. Plus:
o All transcriptions are done in a central location
o No unauthorized printing of documents. Print-outs are shredded after its
---------official use
• Physical -
Our work area facility is kept physically safe and secured 24/7
o A door access control panel in entering the premises
o CCTV cameras monitors the work premises
o Facility patrolled by a 24-hour security personnel
o Servers are centrally located in an enclosed area. Access is limited only to
---------authorized personnel.
• Technical
-
Our system is configured in such a way to prevent any
----------------------unauthorized access to our electronically protected health
----------------------information (ePHI). Thus,
o Our network employs proxy server to ensure that all internet packets are
---------filtered in a central gateway
o Our servers are configured with firewall, antivirus and anti-spy ware
---------protection software
o All forms of removable medias (including CD drive, floppy drive and USB
---------devices etc.) have been disabled in each workstation
o Management & file access control uses a very exclusive password
o Employees are not allowed to send and receive personal emails through
---------the company’s network
o Internet chat rooms and forums are restricted
o File transfer by email or FTP uses SSL 256-bit encryption
|
 |
